CVE-2006-3354

Description

Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (crash) by setting the Filter property of an ADODB.Recordset ActiveX object to certain values multiple times, which triggers a null dereference.

Affected products

• Canon / network_camera_server_vb101
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6 – 6
• Microsoft / ie6.0 – 6.0
• Microsoft / ie6.0 – 6.0
• Microsoft / ie6.0 – 6.0
• Microsoft / ie6.0 – 6.0
• Microsoft / internet_explorer6.0 – 6.0
• Microsoft / internet_explorer6.0.2600 – 6.0.2600
• Microsoft / internet_explorer6.0.2800 – 6.0.2800
• Microsoft / internet_explorer6.0.2800.1106 – 6.0.2800.1106
• Microsoft / internet_explorer6.0.2900.2180 – 6.0.2900.2180
• Microsoft / internet_explorer6 – 6

References

• MISChttp://browserfun.blogspot.com/2006/07/mobb-1-adodbrecordset-filter-property.html
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27596
• MISChttp://www.securityfocus.com/bid/18773
• MISChttp://www.osvdb.org/26834